ldap host

Configures an LDAP server in the TPVM instance.

Syntax

ldap host [ hostname | ip-address ] [ port portnum ] [ secure ]

ldap [ basedn domain-name ] [ rootdn root-domain-name [ rootdnpw root-password ] ]

no ldap host [ hostname | ip-address ] [ port portnum ]

no ldap [ basedn domain-name ] [ rootdn root-domain-name [ [ rootdnpw root-password ]

Command Default

By default, an LDAP server is not configured in TPVM.

Parameters

host [ hostname | ip-address ]: Specifies the host name or IPv4 or IPv6 address or the FQDN of the LDAP server.
port portnum: Specifies the port on the LDAP server. The default secure port is 636. The default non-secure port is 389.
secure: Enables LDAP over TLS.
basedn domain-name: Specifies the base Domain Name.
rootdn root-domain-name: Specifies the root Domain Name.
rootdnpw root-password: Specifies the password for the root Domain Name.

Modes

TPVM Configuration mode

Usage Guidelines

When LDAP replication is in use, no more than 2 LDAP servers can be configured. The base Domain Name and root Domain Name must be common to both servers.

Configuring a secure LDAP server without importing certificates results in an error. Use the tpvm config ldap ca-cert command to import certificates.

Examples

This example adds an LDAP host.

SLX (config)# tpvm TPVM 
SLX (config-tpvm-TPVM)# ldap host 10.24.15.200

This example adds an LDAP host with IPv6 address.

SLX (config)# tpvm TPVM 
SLX (config-tpvm-TPVM)# ldap host 2001:db8::172:1f

This example adds a secure LDAP host with the default port.

device# tpvm config ldap add host 10.24.15.200 secure

This example adds an LDAP host with a custom port.

SLX (config)# tpvm TPVM 
SLX (config-tpvm-TPVM)# ldap host 10.24.15.200 port 234

This example adds a secure LDAP host with a custom port.

SLX (config)# tpvm TPVM 
SLX (config-tpvm-TPVM)# ldap host 10.24.15.200 port 234 secure

This example configures the base Domain Name.

SLX (config-tpvm-TPVM)# ldap basedn dc=ldap,dc=hc-fusion,dc=in

This example configures the root Domain Name.

SLX (config-tpvm-TPVM)# ldap rootdn cn=admin,dc=ldap,dc=hc-fusion,dc=in

This example configures the root Domain Name password.

SLX (config-tpvm-TPVM)# ldap rootdnpw pass123

This example configures the base Domain Name, the root Domain Name, and the root Domain Name password.

SLX (config-tpvm-TPVM)# ldap basedn dc=ldap,dc=hc-fusion,dc=in 
rootdn cn=admin,dc=ldap,dc=hc-fusion,dc=in rootdnpw pass123

This example removes the configured LDAP server.

SLX (config-tpvm-TPVM)# no ldap host 10.24.15.200

This example resets the configured port to the default (389 if the port was non-secure, 636 if the port was secure).

SLX (config-tpvm-TPVM)# no ldap host 1.1.1.1 port

This example disables the secure option for the LDAP server. The configured port remains the same and is not reset to the default. Use the no ldap host <ip-addr> port command to reset the port.

SLX (config-tpvm-TPVM)# no ldap host 1.1.1.1 secure

This example removes the base Domain Name.

SLX (config-tpvm-TPVM)# no ldap basedn

This example removes the root Domain Name.

SLX (config-tpvm-TPVM)# no ldap rootdn

This example removes the root Domain Name password.

SLX (config-tpvm-TPVM)# no ldap rootdnpw

This example removes the base Domain Name, the root Domain Name, and the root Domain Name password.

SLX (config-tpvm-TPVM)# no ldap basedn rootdn rootdnpw